HIPAA Policies and Procedures
HIPAA privacy and security regulations require DPA to implement reasonable and appropriate policies and procedures to comply with the standards, implementation specifications, and other requirements of the regulations. The policies presented here originate from the Division of Human Resources, but apply to all state employees.
Business Associates 5/1/06
Contingency Plan 7/11/06
Device and Media Controls 5/1/06
Facility Access 7/11/06
Information System Activity Review 1/19/07
Organizational Designations 4/16/07
Password Management 5/1/06
Policies, Procedures, and Documentation 5/1/06
Risk Analysis/Assessment 5/1/06
Security Incidents: Response and Reporting 1/19/07
System Access 4/16/07
Workstation Use and Security 5/1/06
For more information about HIPAA privacy or security contact DPA's HIPAA Compliance Officer.
Email comments to: DPA HIPAA Compliance